Skip to main content

UTT HiPER 2610G CVE-2026-11516

| EUVD-2026-35066 LOW
Classic Buffer Overflow (CWE-120)
2026-06-08 VulDB GHSA-x96m-rwwr-fr23
Buffer Overflow Hiper 2610G
2.0
CVSS 4.0 · NVD

Severity by source

NVD PRIMARY
2.0 LOW
CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

3
Severity Changed
Jun 08, 2026 - 15:37 NVD
MEDIUM LOW
CVSS changed
Jun 08, 2026 - 15:37 NVD
5.5 (MEDIUM) 2.0 (LOW)
Analysis Generated
Jun 08, 2026 - 14:54 vuln.today

DescriptionCVE.org

A vulnerability was found in UTT HiPER 2610G up to 3.0.0-171107. This affects the function strcpy of the file /goform/formNatStaticMap. Performing a manipulation of the argument NatBinds results in buffer overflow. The exploit has been made public and could be used.

AnalysisAI

Buffer overflow in UTT HiPER 2610G firmware (up to 3.0.0-171107) enables an authenticated, adjacent-network attacker to corrupt memory via an unsafe strcpy call in the web management NAT static mapping form handler. By supplying an oversized NatBinds argument to /goform/formNatStaticMap, an attacker can achieve low-level impacts across confidentiality, integrity, and availability on the targeted device. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Gain adjacent network access
Delivery
Obtain low-privilege web UI credentials
Exploit
Authenticate to /goform/formNatStaticMap endpoint
Execution
Submit crafted HTTP POST with oversized NatBinds value
Persist
Trigger strcpy buffer overflow
Impact
Corrupt device memory impacting availability, integrity, and confidentiality
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Exploitation requires the attacker to be on the same network segment or a directly adjacent layer-2/layer-3 segment as the HiPER 2610G (AV:A - adjacent network vector; internet-side remote exploitation is not indicated by the available data). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 base score of 5.5 (Medium) accurately reflects meaningful constraints: AV:A limits exploitation to adjacent-network segments rather than the open internet, and PR:L requires a valid authenticated session, introducing a credential barrier. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker with valid low-privilege credentials on the UTT HiPER 2610G - obtained via credential reuse, brute force, or a compromised insider account - submits a crafted HTTP POST request to /goform/formNatStaticMap with a deliberately oversized NatBinds parameter value. The unsafe strcpy call copies the unbounded input into a fixed-size buffer, overwriting adjacent memory regions and potentially corrupting control flow data such as return addresses. …
Remediation No vendor-released patch has been identified at time of analysis - the RL:X (remediation level unknown) temporal metric and absence of any UTT advisory confirm this gap. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-11516 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy